Multi-factor authentication (MFA) adds a second step when you sign in to Cartographer, on top of your password. Even if someone learns your password, they won't be able to get into your account without your second factor. We strongly recommend turning it on.
Cartographer supports two methods, and you can have one active at a time:
- Email codes — we email a one-time six-digit code to your sign-in address each time you sign in.
- Authenticator app — an app on your phone (such as 1Password, Authy, or Google Authenticator) generates a six-digit code that changes every few seconds. This is the more secure of the two options, because it doesn't depend on access to your email.
Using the Cartographer mobile app? Update it to version 1.4.0 or later before you turn on MFA. Earlier versions of the app can't sign in once MFA is enabled.
Finding Your MFA Settings
Your MFA settings live on your My Account page. Click the person icon at the bottom of the sidebar [1] and choose My Account [2]:
On the My Account page, scroll to the Multi Factor Authentication section:
Setting Up Email Codes
- In the Multi Factor Authentication section, choose Email.
- Confirm it's you by entering your Current Password, then click Next.
- We'll email a six-digit code to your sign-in address. Enter it in the Verification Code field and click Next.
- You'll see Email authentication enabled! — click OK. From now on we'll email you a code each time you sign in.
Setting Up an Authenticator App
You can optionally use an authenticator app to protect your Cartographer login. This is a mobile app that generates a 6-digit time-based one-time passcode (TOTP) that changes every few seconds.
Here are a few common authenticator apps on the Google Play and Apple App Stores and help on setting them up:
- 1Password (paid) — Apple App Store, Google Play, Help: One-time passwords
- Authy (free) — Apple App Store, Google Play, Help: Add a new account
- Google Authenticator (free) — Apple App Store, Google Play, Help: Set up Authenticator
Disclaimer: These links are provided for convenience — Cartographer doesn’t endorse or have any affiliation with these apps.
- In the Multi Factor Authentication section, choose Authenticator app.
- Confirm it's you by entering your Current Password, then click Next.
- Scan the QR code with your authenticator app (1Password, Authy, Google Authenticator, etc.). Can't scan it? Choose Enter this setup key manually and type the key into your app instead.
- Your app will show a six-digit code. Enter it in the Verification Code field and click Next.
- You'll see Authenticator app enabled! — click OK. From now on you'll be asked for a code from your app each time you sign in.
If you take too long, you may see a message that the setup expired. If that happens, just close the dialog and start again.
Removing or Changing Your MFA Method
You can switch MFA off — or swap to a different method — from the same Multi Factor Authentication section.
- Click Remove next to your current method.
- Click Next to confirm.
- Verify it's you: with an authenticator app, enter the current six-digit code from your app; with email codes, enter the six-digit code we email you.
- Click Next. You'll see a confirmation that MFA has been removed. Your account is now protected by your password only.
To switch methods, remove your current method and then set up the new one.
If You Get Locked Out
MFA only works if you can reach your second factor. If you've lost your phone or can't get into your email inbox and you're locked out, please contact us. We can remove MFA from your account so you can sign in again and set it up afresh.